RSS Alerts

Related Links

Related Stories

  • US standards drive Canadian information security
    An absence of legislation and the presence of the laissez-faire attitude has resulted in Canada being rather lax when it comes to information security compliance. Robin Arnfield looks at how US standards are driving the Canadian information security marketplace
  • Cloud computing in the spotlight
    Cloud computing promises cost savings and productivity benefits, but how secure is the technology? Neil Stinchcombe investigates
  • Keeping sensitive information secure when staff is leaving
    Career loyalty is an endangered creature. Unlike our predecessors, today’s workforce is unlikely to stay committed to a job for five years, let alone their entire lives. But with such a fluid stream of employees keeping human resources busy, and countless eyes being cast over company data, Rob Stringer investigates how sensitive information can stay faithful to its organisation, even if its staff don’t...
  • Saving face in the absence of legislation
    Avoiding reputation damage to organisations was viewed as top priority by three quarters of respondents in a global information workforce study, commissioned by ISC2 and conducted by analyst firm Frost & Sullivan. John Colley discussed the findings with Eleanor Dallaway…
  • Business Strategy Theatre Agenda
    Focussing on the challenges and issues facing management, CEO's and other board level directors.

News

ISF infosecurity standards incorporated into Acuity’s software

22 May 2009

The Information Security Forum (ISF) and London-based services and software provider, Acuity Risk Management, have signed an intellectual property (IP) licensing agreement to integrate ISF’s Standard of Good Practice for Information Security into Acuity’s STREAM risk and compliance management software.

STREAM users will as a result, be able to view, control and manage their information security compliance in real time against ISF’s Standard and other information security standards such as ISO 27002 and Cobit.

Howard A. Schmidt, president and chief executive of ISF, said: “We believe that integrating ISF IP into industry leading products such as Acuity’s STREAM will provide a range of important benefits to both ISF members and non-members and increase adoption of the ISF Standard of Good Practice.”

Acuity’s managing director Simon Marvell, added: “For the first time, CISOs will have access to the ISF’s information security standard delivered through a tool they can use every day and in real-time to see their enterprise’s risk and compliance position.”

ISF’s Standard of Good Practice for Information Security is based on a work programme and analysis and integration of other information security related standards such as ISO 27002 and COBIT v4.1. It also embraces legal and regulatory requirements including the Sarbanes-Oxley Act 2002, Payment Card Industry Data Security Standard (PCI DSS), Basel II 1998, and the EU Directive on Data Protection.

 

This article is featured in:
Compliance and Policy

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water